{"result": {"cisco": [{"id": "CISCO-SA-20130501-CVE-2013-1156", "type": "cisco", "title": "Cisco Prime Central for Hosted Collaboration Solution Directory Traversal Vulnerability", "description": "A vulnerability in Cisco Prime Central for Hosted Collaboration Solution could allow an unauthenticated, remote attacker to view system files.\n\nThe vulnerability is due to insufficient path traversal prevention. An attacker could exploit this vulnerability by submitting a crafted URL. An exploit could allow the attacker to view system files.\n\nCisco has confirmed the vulnerability in a security notice; however, software updates are not available.\n\nTo exploit the vulnerability, the attacker may provide a link that directs a user to a malicious site and use misleading language or instructions in an attempt to persuade a user to follow the malicious link.\n\nCustomers are advised to review the bug report in the Vendor Announcements section for a current list of affected versions.", "published": "2013-05-01T20:48:13", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20130501-CVE-2013-1156", "cvelist": ["CVE-2013-1156"], "lastseen": "2017-09-26T15:34:02"}]}}